$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: c2fa6iqTJTPJtmFK1Ka7Y/pBMkbgvr12TY6Kk5F2owI= Subject key identifier: 4B:E9:93:77:DC:BC:3F:6C:EA:10:34:62:47:82:FF:91:0D:21:5F:D1 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0460 Signing time: Sat 23 Aug 2025 00:28:54 +0000 Manifest this update: Sat 23 Aug 2025 00:28:53 +0000 Manifest next update: Sat 30 Aug 2025 00:28:53 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: 2fIEqx/8UjAbEJYnyZrq9T5leD0fInt8LVxMCpGYV4Y=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Aug 23 00:28:53 2025 GMT Not After : Aug 30 00:28:53 2025 GMT Subject: CN=68a90b45-0f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a5:f2:db:61:8b:a7:70:1c:75:d4:ce:17:96: db:ac:e2:97:01:6f:43:de:fa:1d:f2:e7:2c:55:ec: 35:e1:d7:6c:ec:27:49:5d:da:38:4d:d6:fc:87:e5: 8f:9c:5b:09:79:3f:9d:e9:e3:a0:a9:cd:fc:d2:e6: d6:f1:a1:c0:ce:c4:6e:77:b9:96:ca:0a:a1:4b:76: fb:53:2d:92:4e:df:ee:7b:98:cf:9d:f0:08:db:d8: ec:32:77:1d:62:c2:ca:ae:10:87:e5:08:73:00:20: c1:20:2e:fc:2d:76:bc:01:6e:c0:97:ec:28:34:d7: ae:87:cc:17:f3:70:07:90:32:4b:7d:8f:05:81:29: 86:40:1c:92:e6:c9:30:be:e6:6a:c9:e6:e4:4b:cc: fe:9a:84:51:54:70:81:03:1b:43:fb:ec:ce:07:8e: 90:45:3f:85:03:4a:a4:eb:48:9a:24:7f:6b:9f:ea: 9d:f3:be:ab:cb:2a:24:93:f1:21:ec:b5:1e:2d:d1: c8:79:5f:e7:56:ae:03:e9:54:1a:db:9d:7a:7f:42: a1:e9:2c:68:a9:5f:fb:f4:8c:aa:fd:2b:42:5f:3b: 28:17:c8:d0:3c:17:6e:2d:e9:1a:d0:6e:5f:7a:d5: a6:16:93:7e:e9:e8:18:9a:49:0d:5d:4e:b3:4c:9d: 68:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E9:93:77:DC:BC:3F:6C:EA:10:34:62:47:82:FF:91:0D:21:5F:D1 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:4c:ce:b5:54:5e:78:82:c8:f2:fe:cb:88:bc:0e:51:e8:46: fe:a2:de:57:08:c0:98:0d:99:bd:4e:b7:27:96:14:33:d5:7c: 92:c6:04:d1:ec:b6:65:e4:cf:1c:31:24:c2:bb:30:a6:74:25: 1d:3e:fc:ad:89:b7:18:2a:2b:2f:bf:30:a4:e0:98:1b:21:36: 9f:ad:e2:3e:a1:6a:bf:e2:b5:0c:eb:4f:c2:c1:63:c2:7d:86: cd:07:9c:8b:3e:bb:73:f3:33:08:2e:e7:11:85:8c:c7:4d:d6: bf:54:8c:5b:8f:f8:11:1e:11:56:7f:d7:43:e3:99:8c:83:ad: c2:7b:b4:ad:61:ff:5e:b7:dc:65:57:13:80:34:48:cf:69:06: 22:1e:39:8a:b6:97:60:44:2d:ae:dd:2a:86:35:a5:3e:31:83: 0d:78:6e:50:3f:4f:88:0b:3c:1c:78:44:f5:a1:ba:b5:05:e0: 3c:5c:8f:80:f4:f6:42:31:2b:42:7d:41:1e:50:6f:18:ee:99: 7a:21:a0:2d:66:df:55:4f:1a:bf:3d:17:16:5f:8a:6b:14:3d: 5b:2c:7c:ed:8b:71:a0:1c:e8:66:1c:e4:f0:52:14:3a:99:5c: ab:75:bc:3e:50:b1:79:94:b1:8f:9f:26:6f:b9:10:d3:4e:9e: 74:68:c2:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUwODIzMDAyODUzWhcNMjUwODMwMDAyODUzWjAYMRYwFAYD VQQDEw02OGE5MGI0NS0wZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6Xy22GLp3AcddTOF5bbrOKXAW9D3vod8ucsVew14dds7CdJXdo4Tdb8h+WP nFsJeT+d6eOgqc380ubW8aHAzsRud7mWygqhS3b7Uy2STt/ue5jPnfAI29jsMncd YsLKrhCH5QhzACDBIC78LXa8AW7Al+woNNeuh8wX83AHkDJLfY8FgSmGQByS5skw vuZqyebkS8z+moRRVHCBAxtD++zOB46QRT+FA0qk60iaJH9rn+qd876ryyokk/Eh 7LUeLdHIeV/nVq4D6VQa2516f0Kh6SxoqV/79Iyq/StCXzsoF8jQPBduLeka0G5f etWmFpN+6egYmkkNXU6zTJ1opQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvpk3fc vD9s6hA0YkeC/5ENIV/RMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGTM61VF54gsjy/suIvA5R6Eb+ot5XCMCYDZm9TrcnlhQz1XySxgTR 7LZl5M8cMSTCuzCmdCUdPvytibcYKisvvzCk4JgbITafreI+oWq/4rUM60/CwWPC fYbNB5yLPrtz8zMILucRhYzHTda/VIxbj/gRHhFWf9dD45mMg63Ce7StYf9et9xl VxOANEjPaQYiHjmKtpdgRC2u3SqGNaU+MYMNeG5QP0+ICzwceET1obq1BeA8XI+A 9PZCMStCfUEeUG8Y7pl6IaAtZt9VTxq/PRcWX4prFD1bLHzti3GgHOhmHOTwUhQ6 mVyrdbw+ULF5lLGPnyZvuRDTTp50aMIT -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:16 2025 by rpki-client